 | |||
| Sophos latest virus and spyware detection | Sophos latest suspicious behavior and file detection | Sophos latest adware and PUA detection | Sophos latest controlled applications |
|---|---|---|---|
| XML Troj/PDFJS-US Troj/JavaDl-GQ Mal/Mdrop-JH Mal/Mdrop-AA Troj/Mdrop-DXV Troj/Agent-UTD Troj/Agent-UTC Mal/Generic-S Mal/Generic-L Mal/FkFlash-A | XML Sus/JVBadByt-A Sus/Behav-1018 Mal/VBBHK-A HPsus/SrvDrop-A Sus/ComPack-L Sus/PDFJs-T HPsus/TDLrtk-E HPsus/TDLrtk-D HPsus/TDLrtk-C HPsus/EncPk-C | XML IMFlood Cydoor Rival Gaming nbiz FreeKeyLogger AdRotator RJL Replace Keys Openshop SAMInside LoudMo Ad Assistant | XML CircumventorSSH Module Die Kunst des Mordens Disk Aid Hidden and Dangerous LanSurveyor Express Lego Star Wars MS Paint Quassel IRC ResHacker SABNZBD |
 |
| VirusAlert, de Nederlandstalige bron voor informatie over computervirussen. De ideale aanvulling op antivirussoftware. Dagelijks informatie over computervirussen en hoax-berichten. In het geval van een high-risk virus ontvangt u informatie via de gratis nieuwsbrief. Hieronder informatie over de laatste 10 virussen. |
| VirusAlert |
|---|
| XML VBS.Sojax WinCE.Fakemini Downloader.Dromedan W32.Masavebe Trojan.Krast trojan.pherbot Backdoor.Meciv Trojan.Spamavicon Trojan.Stylz W32.Virauto W32.Huanot |
| US-CERT Technical Cyber Security Alerts provide timely information about current security issues, vulnerabilities, and exploits. |
| US-CERT Technical Cyber Security Alerts |
|---|
| XML TA12-024A: "Anonymous" DDoS Activity TA12-010A: Microsoft Updates for Multiple Vulnerabilities TA12-006A: Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack TA11-350A: Adobe Updates for Multiple Vulnerabilities TA11-347A: Microsoft Updates for Multiple Vulnerabilities TA11-312A: Microsoft Updates for Multiple Vulnerabilities TA11-286A: Apple Updates for Multiple Vulnerabilities TA11-284A: Microsoft Updates for Multiple Vulnerabilities TA11-256A: Microsoft Updates for Multiple Vulnerabilities TA11-222A: Adobe Updates for Multiple Vulnerabilities |
| US-CERT Cyber Security Tips describe and offer advice about common security issues for non-technical computer users. Tips are restricted to a single topic, although complex issues may span multiple tips. Each tip builds upon the knowledge, both terminology and content, of those published prior to it. |
| US-CERT Cyber Security Tips |
|---|
| XML ST11-001: Holiday Traveling with Personal Internet-Enabled Devices ST06-001: Understanding Hidden Threats: Rootkits and Botnets ST04-024: Understanding ISPs ST06-005: Dealing with Cyberbullies ST05-002: Keeping Children Safe Online ST08-001: Using Caution with USB Drives ST06-004: Avoiding the Pitfalls of Online Trading ST06-006: Understanding Hidden Threats: Corrupted Software Files ST06-002: Debunking Some Common Myths ST06-003: Staying Safe on Social Network Sites |
| SANS Internet Storm Center, InfoCON: green |
|---|
| XML Apple Security Advisory 2012-001 v1.1, (Sat, Feb 4th) Earlier today, Apple announced v 1.1 of the Security update 2012-001. The advisory announced the availability of Security Update for Mac OSX10.6.8 that addresses a compatibility issue, and the removal of security fixes that were present in original update for Snow Leopard. I am not confident why Apple removed security fixes from the original release, but maybe one of our readers can help us understand the issues behind the ImageIOsecurity fix removal. Below is the security advisory and we will link to the advisory once it is available on Apple's website. APPLE-SA-2012-02-03-1 Security Update 2012-001 v1.1 Security Update 2012-001 v1.1 is now available for Mac OS X v10.6.8 systems to address a compatibility issue. Version 1.1 of this update removes the ImageIO security fixes released in Security Update 2012-001. OS X Lion systems are not affected by this change. Update #1: Apple Support shows there were 3 different issues which were corrected in ImageIO in the original Security Update information located at http://support.apple.com/kb/HT5130. Elsewhere, it appears that there are a number of users of OS XLion which had problems after applying the original update as reported in Apple Support forums, 9to5Mac, and thevarguy.com. The Security Advisory only mentions OS X Snow Leopard, so I am not sure that the two issues are related or just coincidental. Stay tuned for more information. ---- Guy Bruneau Scott Fendley (ISC Handler On Duty) (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Sophos 2012 Security Threat Report, (Fri, Feb 3rd) Last week Sophos released it 2012 Security Threat Report which highlighted some key finding from 2011: - Smartphones and tablets causing significant security challenges - Major data breaches and targeted attacks on high-profile companies and agencies - Hacktivism - A shift from hacking for money to hacking as a form of protest or to prove a point - Conficker worm is still the most commonly encountered pieces of malicious software seen is Sophos customers - Fake antivirus software is still the most common type of malware but in second half of the year appears to be on the decline - Spearphishing attacks on the rise Despite all this, some successes On March 16, 2011 a coordinated effort known as Operation b107 between Microsoft, FireEye, U.S. federal law enforcement agents and the University of Washington knocked Rustock offline. [1] The entire report available here. Handler Mark published a diary on some of the things to take in consideration When your service provider has a breach. [3] [1] http://www.sophos.com/en-us/security-news-trends/reports/security-threat-report/html-07.aspx [2] http://www.sophos.com/en-us/security-news-trends/reports/security-threat-report/html-01.aspx [3] https://isc.sans.edu/diary.html?storyid=10651 [4] http://www.sophos.com/medialibrary/PDFs/other/SophosSecurityThreatReport2012.pdf Data breach diaries reported by ISC in 2011: [1] Wordpress.com https://isc.sans.edu/diary.html?storyid=10729 [2] RSA Breach https://isc.sans.edu/diary.html?storyid=10609 [3] Lockheed Marting https://isc.sans.edu/diary.html?storyid=10939 [4] Sega Pass https://isc.sans.edu/diary.html?storyid=11065 [5] SonyPictures https://isc.sans.edu/diary.html?storyid=10996 [6] DigiNotar SSL Breach (result = bankruptcy) https://isc.sans.edu/diary.html?storyid=11479 [7] GlobalSign https://isc.sans.edu/diary.html?storyid=12205 [8] Stratfor Global Intelligence https://isc.sans.edu/diary.html?storyid=12271 ----------- Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. ISC StormCast for Friday, February 3rd 2012 http://isc.sans.edu/podcastdetail.html?id=2302, (Fri, Feb 3rd) (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Critical PHP bug patched, (Fri, Feb 3rd) Just about a month ago, PHP 5.3.9 was released, which included a patch for the hash collision problem. The basic hash collision problem affected various languages, including php and .Net (Microsoft fixed the issue in an out of band patch 2011-100 in late December). PHP fixed the issue not by introducing a new hash function, but instead it limited the number of input parameters. Just like the php hardening patch suhosin did all along, PHP now supported a max_input_var parameter to limit the number of input parameters a request may send. The default limit was set to 1,000, plenty for most web applications. Sadly, the fix was implemented incorrectly, and introduced a more severe vulnerability, a remote code execution vulnerability. Thats right: An attacker could craft a request, that will execute code on a web server running PHP 5.3.9. Today, the PHP team released PHP 5.3.10 to address the issue. If you are running PHP 5.3.9: PATCH NOW! This is a very critical bug If you are running PHP 5.3.8: DO NOT UPGRADE TO 5.3.9. I would actually recommend that you wait. Additionally, try to enable Suhosin if at all possible. There is a slight performance hit, but it is unlikely to break your web application unless you are already tight in resources. Many Linux distributions include Suhosin, so it may be pretty easy to set up. ------ Johannes B. Ullrich, Ph.D. SANS Technology Institute Twitter (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. New Poll - What security issue concerns you the most this year?, (Fri, Feb 3rd) ----------- Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. PHP 5.3.10 Released, Fixes CVE-2012-0830 available for download http://www.php.net/archive/2012.php#id2012-02-02-1, (Fri, Feb 3rd) ----------- Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. ISC StormCast for Thursday, February 2nd 2012 http://isc.sans.edu/podcastdetail.html?id=2299, (Thu, Feb 2nd) (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Apple and Apache security fixes and releases, (Wed, Feb 1st) Apple updates released today: security update 2012-001 for Snow Leopard (Mac OS X 10.6) and Snow Leopard server update for Lion and Lion server (Mac OS X 10.7.2 - 10.7.3) remote desktop 3.5.2 client server admin tools 10.7.3 http://support.apple.com/kb/HT1222 10.7.3:http://support.apple.com/kb/HT5048 server admin tools:http://support.apple.com/kb/HT5050 Apache HTTP Server 2.2.22 Released This version of Apache is principally a security and bug fix release, including significant security fixes: http://httpd.apache.org/security/vulnerabilities_22.html (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Oracle Security Alert: http://www.oracle.com/technetwork/topics/security/alert-cve-2011-5035-1506603.html, (Wed, Feb 1st) (c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. |
 |
| Free content directory of company related articles. All items are available for publication and can be reprinted free of charge as long as the author box remains intact. Build content for your website quickly and easily! Webmasters can take the articles included in this section and incorporate them on their website at no charge whatsoever, as long as the about the author box remains intact. |
| Avira - Latest News |
|---|
| Last updated: Sat, 04 Feb 2012 09:05:05 +0100 |
| XML Avira and secure.me Protect Personal Information and Privacy on Facebook with Joint Product Bundle Product Bundle Available Today on Avira Website Published:Tue, 10 Jan 2012 00:00:00 +0100 Avira Security Downloaded 16 Million Times from One Website Wins Top 11 Downloads of 2011 Award from CNET Published:Wed, 28 Dec 2011 00:00:00 +0100 Avira Security Software Now Available at Office Supply Retail Stores Special Year-End Offer Includes Back-up Software for Android, Blackberry and iOS Smartphones Published:Tue, 13 Dec 2011 00:00:00 +0100 Avira Claims No. 2 Spot in Global Market Share for Antivirus OPSWAT 2011 Market Share Report Confirms Published:Fri, 09 Dec 2011 00:00:00 +0100 Avira and secure.me Join Forces to Protect Personal Data and Privacy on Facebook Focus of North American collaborative effort is to solidify social media security Published:Thu, 08 Dec 2011 00:00:00 +0100 |
|
| Use Avira's Latest Threats RSS to keep track of the newest multi-language malware descriptions posted on our website automatically. For details, plese visit our website: www.avira.com. |
| Avira - Latest Threats Descriptions |
|---|
| Last updated: Sat, 04 Feb 2012 09:05:05 +0100 |
| XML TR/Spy.2442538.1 Danger Level: Low Threat VDF version: 7.11.22.14 Published date: Fri, 03 Feb 2012 02:08:07 +0100 Complete description for this threat can be found here. Published:Fri, 03 Feb 2012 02:08:07 +0100 BDS/Bifrose.ejdq Danger Level: Low Threat VDF version: 7.11.21.234 Published date: Wed, 01 Feb 2012 07:54:09 +0100 Complete description for this threat can be found here. Published:Wed, 01 Feb 2012 07:54:09 +0100 TR/Dldr.Darkmegi.A Danger Level: Low to Medium Threat VDF version: 7.11.21.210 Published date: Mon, 30 Jan 2012 08:50:42 +0100 Complete description for this threat can be found here. Published:Mon, 30 Jan 2012 08:50:42 +0100 TR/VB.Agent.AAAE Danger Level: Low Threat VDF version: 7.11.21.193 Published date: Fri, 27 Jan 2012 19:42:53 +0100 Complete description for this threat can be found here. Published:Fri, 27 Jan 2012 19:42:53 +0100 Worm/Ganelp.abu Danger Level: Low Threat VDF version: 7.11.15.08 Published date: Tue, 24 Jan 2012 13:32:59 +0100 Complete description for this threat can be found here. Published:Tue, 24 Jan 2012 13:32:59 +0100 |
 |
| SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs. |
| SecurityFocus Vulnerabilities |
|---|
| XML Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability Pligg CMS 'status' Parameter SQL Injection Vulnerability Vuln: Joomla! Multiple Information Disclosure Vulnerabilities Joomla! Multiple Information Disclosure Vulnerabilities Vuln: QEMU KVM CVE-2012-0029 Local Privilege Escalation Vulnerability QEMU KVM CVE-2012-0029 Local Privilege Escalation Vulnerability Vuln: Mozilla Firefox/SeaMonkey/Thunderbird XPConnect Security Check Cross Domain Scripting Vulnerability Mozilla Firefox/SeaMonkey/Thunderbird XPConnect Security Check Cross Domain Scripting Vulnerability Bugtraq: [ MDVSA-2012:013 ] mozilla [ MDVSA-2012:013 ] mozilla Bugtraq: ESA-2012-010: EMC Documentum xPlore information disclosure vulnerability ESA-2012-010: EMC Documentum xPlore information disclosure vulnerability Bugtraq: RFC 6528 on Defending against Sequence Number Attacks RFC 6528 on Defending against Sequence Number Attacks Bugtraq: [SECURITY] [DSA 2403-1] php5 security update [SECURITY] [DSA 2403-1] php5 security update More rss feeds from SecurityFocus News, Infocus, Columns, Vulnerabilities, Bugtraq ... |
